[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fDQTQ1Atd1QKtQmIDcE3GsJMtCNpZPOkr_d_dJPx2Pn4":3,"$fy389g9TaUYs-4YJgcIVfhcPs7URkjd1Em3nkK53ASh4":276,"$f60vewsMNgxWWK1k_6L6dKY0mFIHJx3-0a6x6WRXptxg":281},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":11,"num_ratings":11,"last_updated":13,"tested_up_to":14,"requires_at_least":15,"requires_php":16,"tags":17,"homepage":22,"download_link":23,"security_score":24,"vuln_count":25,"unpatched_count":25,"last_vuln_date":26,"fetched_at":27,"discovery_status":28,"vulnerabilities":29,"developer":56,"crawl_stats":35,"alternatives":61,"analysis":166,"fingerprints":241},"eds-social-share","Ed's Social Share","3.0","waianaeboy702","https:\u002F\u002Fprofiles.wordpress.org\u002Fwaianaeboy702\u002F","\u003Cp>The Ultimate Share Shortcode Plugin to share all of your sites on social media.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Supported Platforms:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Facebook, X (Twitter), Instagram, LinkedIn, Pinterest, YouTube, GitHub\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> TikTok, Threads, WhatsApp, Reddit, Telegram, Truth Social\u003C\u002Fli>\n\u003Cli>Email, Print\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Features:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Simple shortcode — just add \u003Ccode>[social_share]\u003C\u002Fcode> anywhere\u003C\u002Fli>\n\u003Cli>Toggle each platform on\u002Foff in settings\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Custom profile URLs for Instagram, GitHub, YouTube, TikTok, Threads\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Global Twitter\u002FX handle setting\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Icon size option — small, medium, large\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Styles only load when shortcode is used (better performance)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Built-in Open Graph meta tags — control the image, title, and description shown when your pages are shared\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Per-page share image override via meta box\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW:\u003C\u002Fstrong> Default share image setting with media library upload\u003C\u002Fli>\n\u003Cli>Smart conflict detection — auto-disables Open Graph if Yoast, RankMath, AIOSEO, or Jetpack is active\u003C\u002Fli>\n\u003Cli>Beautiful animated hover effects with tooltips\u003C\u002Fli>\n\u003Cli>Fully responsive\u003C\u002Fli>\n\u003C\u002Ful>\n","Add beautiful social share buttons for Facebook, X, LinkedIn, TikTok, WhatsApp, Threads, and more with a simple shortcode.",0,1014,"2026-04-09T17:34:00.000Z","6.9.4","6.8","7.0",[4,18,19,20,21],"icons","shortcode","social-icons","social-sharing","https:\u002F\u002Fnextlevelwebdevelopers.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feds-social-share.3.0.zip",78,1,"2026-03-20 15:15:30","2026-04-16T10:56:18.058Z","no_bundle",[30],{"id":31,"url_slug":32,"title":33,"description":34,"plugin_slug":4,"theme_slug":35,"affected_versions":36,"patched_in_version":35,"severity":37,"cvss_score":38,"cvss_vector":39,"vuln_type":40,"published_date":26,"updated_date":41,"references":42,"days_to_patch":35,"patch_diff_files":44,"patch_trac_url":35,"research_status":45,"research_verified":46,"research_rounds_completed":47,"research_plan":48,"research_summary":49,"research_vulnerable_code":50,"research_fix_diff":51,"research_exploit_outline":52,"research_model_used":53,"research_started_at":54,"research_completed_at":55,"research_error":35,"poc_status":35,"poc_video_id":35,"poc_summary":35,"poc_steps":35,"poc_tested_at":35,"poc_wp_version":35,"poc_php_version":35,"poc_playwright_script":35,"poc_exploit_code":35,"poc_has_trace":46,"poc_model_used":35,"poc_verification_depth":35},"CVE-2026-2501","eds-social-share-authenticated-contributor-stored-cross-site-scripting-via-shortcode-attributes","Ed's Social Share \u003C= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Attributes","The Ed's Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `social_share` shortcode in all versions up to, and including, 2.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",null,"\u003C=2.0","medium",6.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2026-04-15 17:39:34",[43],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fe4ac5f28-8727-4205-abe5-7f29a0c4dc5d?source=api-prod",[],"researched",false,3,"# Exploitation Research Plan: CVE-2026-2501 (Ed's Social Share \u003C= 2.0)\n\n## 1. Vulnerability Summary\nThe **Ed's Social Share** plugin (versions up to 2.0) is vulnerable to **Stored Cross-Site Scripting (XSS)**. The plugin registers a shortcode, `social_share`, which accepts user-defined attributes (e.g., titles, URLs, or custom styles). Due to a lack of sanitization in the shortcode's callback function and a failure to escape these attributes during HTML generation, an authenticated user with at least **Contributor** permissions can inject malicious JavaScript into a post or page. This script executes in the context of any user (including administrators) who views the affected content.\n\n## 2. Attack Vector Analysis\n*   **Shortcode:** `[social_share]`\n*   **Vulnerable Parameters:** Shortcode attributes (inferred: `title`, `url`, `icon`, `class`, or `style`).\n*   **Authentication Level:** Authenticated (Contributor+). Contributors can create posts and embed shortcodes but cannot normally use `unfiltered_html`.\n*   **Preconditions:** The plugin must be active. A post containing the malicious shortcode must be published or previewed.\n\n## 3. Code Flow (Inferred)\n1.  **Registration:** The plugin uses `add_shortcode( 'social_share', 'callback_function' )` during the `init` or `plugins_loaded` hook.\n2.  **Parsing:** When a post is rendered, WordPress calls the shortcode's callback. The callback likely uses `shortcode_atts()` to merge user-supplied attributes with defaults.\n3.  **Sink:** The callback function constructs an HTML string (e.g., `\u003Ca>`, `\u003Cdiv>`, or `\u003Cimg>` tags) by concatenating the attributes directly into the HTML without using escaping functions like `esc_attr()` or `esc_html()`.\n4.  **Output:** The unsanitized HTML is returned by the callback and rendered on the page.\n\n## 4. Nonce Acquisition Strategy\nShortcode **rendering** does not require a nonce. However, **saving a post** as a Contributor typically does.\n\nTo exploit this via the automated agent:\n1.  **Standard Post Creation:** Use the WordPress REST API or the classic editor.\n2.  **Nonce Requirement:** When using the REST API (`\u002Fwp-json\u002Fwp\u002Fv2\u002Fposts`), a `_wpnonce` is required in the header (`X-WP-Nonce`).\n3.  **Acquisition:** \n    *   Log in as a Contributor.\n    *   Navigate to the Dashboard (`\u002Fwp-admin\u002F`).\n    *   Use `browser_eval` to extract the REST nonce from the global WordPress variable: \n        `browser_eval(\"wpApiSettings.nonce\")`\n    *   Use this nonce in the `http_request` tool to create a post containing the payload.\n\n## 5. Exploitation Strategy\nThe goal is to inject an XSS payload via a shortcode attribute that breaks out of an HTML attribute or is rendered directly as a tag.\n\n### Step-by-Step Plan:\n1.  **Authenticate:** Log in as a user with the **Contributor** role.\n2.  **Get Nonce:** Extract the REST API nonce using the strategy in Section 4.\n3.  **Inject Payload:** Create a new post via the REST API containing the malicious shortcode.\n    *   **Payload 1 (Attribute Breakout):** `[social_share title='\">\u003Cscript>alert(document.domain)\u003C\u002Fscript>']`\n    *   **Payload 2 (Event Handler):** `[social_share icon='x\" onerror=\"alert(1)\"']` (inferred attribute name)\n    *   **Payload 3 (URL Context):** `[social_share url='javascript:alert(1)']`\n4.  **Identify Post URL:** Capture the URL of the newly created post from the API response.\n5.  **Trigger XSS:** Navigate to the post URL as an Administrator or an unauthenticated user to confirm the script execution.\n\n### Example HTTP Request (REST API):\n```http\nPOST \u002Fwp-json\u002Fwp\u002Fv2\u002Fposts HTTP\u002F1.1\nHost: target.example.com\nContent-Type: application\u002Fjson\nX-WP-Nonce: [EXTRACTED_NONCE]\n\n{\n  \"title\": \"Social Share Test\",\n  \"content\": \"[social_share title='\\\" style=\\\"animation-name:rotation\\\" onanimationstart=\\\"alert(document.domain)\\\"']\",\n  \"status\": \"pending\"\n}\n```\n*Note: Contributors' posts are often set to `pending`. You can still preview them or have an admin publish them.*\n\n## 6. Test Data Setup\n1.  **User:** Create a user with the username `contributor_attacker` and the role `contributor`.\n2.  **Plugin Status:** Ensure `eds-social-share` is installed and activated.\n3.  **Post:** A page or post must exist where the shortcode can be viewed (this is handled during the Injection step).\n\n## 7. Expected Results\n*   The shortcode should render on the frontend.\n*   If vulnerable, the HTML source will contain the raw payload, e.g.:\n    `\u003Cdiv class=\"share-title\" title=\"\" style=\"animation-name:rotation\" onanimationstart=\"alert(document.domain)\">`\n*   The browser will trigger an alert box showing the document domain.\n\n## 8. Verification Steps\n1.  **CLI Check:** Use WP-CLI to verify the post content:\n    `wp post list --post_type=post --status=pending --fields=ID,post_content`\n2.  **Source Inspection:** Use `http_request` (GET) on the post URL and check if the payload is present in the response body without HTML encoding:\n    `grep \"onanimationstart=\\\"alert\" response_body.html`\n3.  **Execution Check:** Use `browser_navigate` to the post and check for an alert or a specific DOM change.\n\n## 9. Alternative Approaches\nIf the `title` attribute is sanitized, try other common attributes used by social sharing plugins (inferred):\n*   `via`: `[social_share via='\u003Cscript>alert(1)\u003C\u002Fscript>']`\n*   `url`: `[social_share url='\">\u003Cimg src=x onerror=alert(1)>']`\n*   `description`: `[social_share description='\u003C\u002Ftextarea>\u003Cscript>alert(1)\u003C\u002Fscript>']`\n*   **Shortcode Tag Injection:** If the plugin uses the content of the shortcode:\n    `[social_share]\u003Cscript>alert(1)\u003C\u002Fscript>[\u002Fsocial_share]` (Check if the plugin supports enclosing shortcodes).","The Ed's Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'social_share' shortcode in versions up to 2.0. This occurs because shortcode attributes such as 'title' or 'url' are concatenated directly into the HTML output without proper sanitization or escaping, allowing contributors to inject malicious JavaScript.","\u002F\u002F Inferred registration and vulnerable callback based on research plan\n\u002F\u002F File: eds-social-share.php (hypothetical path)\n\nfunction eds_social_share_callback( $atts ) {\n    $a = shortcode_atts( array(\n        'title' => '',\n        'url' => '',\n        'icon' => ''\n    ), $atts );\n\n    \u002F\u002F The attributes are placed directly into HTML attributes or tags without esc_attr() or esc_html()\n    $html = '\u003Cdiv class=\"social-share-container\" data-title=\"' . $a['title'] . '\" data-url=\"' . $a['url'] . '\">';\n    $html .= '\u003Ci class=\"' . $a['icon'] . '\">\u003C\u002Fi>';\n    return $html;\n}\nadd_shortcode( 'social_share', 'eds_social_share_callback' );","--- a\u002Feds-social-share.php\n+++ b\u002Feds-social-share.php\n@@ -8,3 +8,3 @@\n-    $html = '\u003Cdiv class=\"social-share-container\" data-title=\"' . $a['title'] . '\" data-url=\"' . $a['url'] . '\">';\n-    $html .= '\u003Ci class=\"' . $a['icon'] . '\">\u003C\u002Fi>';\n+    $html = '\u003Cdiv class=\"social-share-container\" data-title=\"' . esc_attr($a['title']) . '\" data-url=\"' . esc_url($a['url']) . '\">';\n+    $html .= '\u003Ci class=\"' . esc_attr($a['icon']) . '\">\u003C\u002Fi>';\n     return $html;","To exploit this vulnerability, an attacker with at least Contributor-level permissions must create or edit a post and include the plugin's shortcode with a malicious payload in one of its attributes. \n\n1. Log in to the WordPress dashboard as a Contributor.\n2. Create a new post and include a shortcode payload such as: `[social_share title='\">\u003Cscript>alert(document.domain)\u003C\u002Fscript>']` or `[social_share icon='x\" onerror=\"alert(1)\"']`.\n3. Submit the post for review (or preview it). \n4. When an administrator or any other user views the post or the preview, the unescaped attributes break out of the HTML tag context, causing the browser to execute the injected script in the context of the victim's session.","gemini-3-flash-preview","2026-04-18 00:50:35","2026-04-18 00:50:53",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":57,"total_installs":11,"avg_security_score":24,"avg_patch_time_days":58,"trust_score":59,"computed_at":60},2,30,79,"2026-05-20T00:03:33.735Z",[62,85,109,129,149],{"slug":63,"name":64,"version":65,"author":66,"author_profile":67,"description":68,"short_description":69,"active_installs":70,"downloaded":71,"rating":72,"num_ratings":73,"last_updated":74,"tested_up_to":16,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":81,"download_link":82,"security_score":83,"vuln_count":47,"unpatched_count":11,"last_vuln_date":84,"fetched_at":27},"social-icons-widget-by-wpzoom","Social Icons Widget & Block – Social Media Icons & Share Buttons","4.5.10","WPZOOM","https:\u002F\u002Fprofiles.wordpress.org\u002Fwpzoom\u002F","\u003Ch4>Social Media Icons & Share Buttons for WordPress\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>The best social icons plugin for WordPress.\u003C\u002Fstrong> Add beautiful social media icons and share buttons anywhere on your site. 400+ icons, Gutenberg block, widget, Elementor support – all in one plugin.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>Did you find this plugin helpful? Please consider \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fsupport\u002Fview\u002Fplugin-reviews\u002Fsocial-icons-widget-by-wpzoom\" rel=\"ugc\">leaving a 5-star review\u003C\u002Fa>.\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Cp>\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdemo.wpzoom.com\u002Fsocial-icons\u002F\" rel=\"nofollow ugc\">Social Icons Block Demo\u003C\u002Fa>\u003C\u002Fstrong>\u003Cbr \u002F>\n\u003Cstrong>\u003Ca href=\"https:\u002F\u002Fdemo.wpzoom.com\u002Fsocial-icons\u002F2016\u002F04\u002F21\u002Fsharing-buttons\u002F\" rel=\"nofollow ugc\">Sharing Buttons Demo\u003C\u002Fa>\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Social Icons & Sharing Buttons\u003C\u002Fstrong> helps you to add social media icons and sharing buttons to your website. The plugin includes several icon sets, which gives you the possibility to use the widget for more than just linking to your social media profiles. You can use generic icons to add links to anything you want, and enable sharing buttons to let visitors share your content across social networks.\u003C\u002Fp>\n\u003Cblockquote>\n\u003Cp>With the help of WPZOOM’s excellent Social Icons Widget plugin, you can link to all your social network profiles and add sharing buttons in no time, letting your visitors easily get in touch with you on all social media channels and share your content.\u003Cbr \u002F>\n  ⭐️⭐️⭐️⭐️⭐️\u003Cbr \u002F>\n  WPKlik\u003C\u002Fp>\n\u003C\u002Fblockquote>\n\u003Ch4>What’s new in 4.5.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW: Social Sharing Buttons Block\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>NEW: Add Social Sharing Buttons in posts and pages\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What’s new in 4.4.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW: Add SVG Icons in the Social Icons Block\u003C\u002Fstrong>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>What’s new in 4.0.0\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>NEW: Gutenberg Block\u003C\u002Fstrong>\u003C\u002Fli>\n\u003Cli>New icon styles in the new Social Icons Block\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Where I can view a Demo?\u003C\u002Fh4>\n\u003Cp>You can view the plugin live in all our themes at \u003Ca href=\"https:\u002F\u002Fwww.wpzoom.com\u002Fthemes\u002F\" rel=\"nofollow ugc\">WPZOOM\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch4>View Demo & Examples\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdemo.wpzoom.com\u002F?theme=foodica\" rel=\"nofollow ugc\">Foodica Theme\u003C\u002Fa> – header bar and sidebar\u003C\u002Fli>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fdemo.wpzoom.com\u002Finspiro\" rel=\"nofollow ugc\">Inspiro Theme\u003C\u002Fa> – sidebar panel and footer\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Features:\u003C\u002Fh4>\n\u003Cp>\u003Cstrong>Social Icons Block:\u003C\u002Fstrong>\u003Cbr \u002F>\n* SVG Icons Support – Upload custom SVG icons\u003Cbr \u002F>\n* 400+ Custom Icons from 5 Icon Sets\u003Cbr \u002F>\n* Gutenberg Block with Live Preview\u003Cbr \u002F>\n* Drag & Drop Icons with Sortable Arrows\u003Cbr \u002F>\n* Color Picker for Each Icon\u003Cbr \u002F>\n* Search by Keywords\u003Cbr \u002F>\n* Adjust Icon Size & Padding\u003Cbr \u002F>\n* Multiple Styles: Icon Shape and Icon with Background\u003Cbr \u002F>\n* 3 Background Styles: Rounded Corners, Round, Square\u003Cbr \u002F>\n* Icon Sets + Shortcodes\u003Cbr \u002F>\n* Elementor Widget Integration\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Social Sharing Buttons Block:\u003C\u002Fstrong>\u003Cbr \u002F>\n* 12+ Sharing Platforms: Facebook, X, Threads, LinkedIn, Pinterest, Reddit, Telegram, WhatsApp, Bluesky, Email, Copy Link, and Print\u003Cbr \u002F>\n* Multiple Button Styles: Circle, Square, Rounded, Outlined, Minimal, One-tone\u003Cbr \u002F>\n* Customizable Colors, Sizes, Padding & Margins\u003Cbr \u002F>\n* Show\u002FHide Labels\u003Cbr \u002F>\n* Print Button to Trigger Browser Print Dialog\u003Cbr \u002F>\n* Copy Link Button with Visual Feedback\u003Cbr \u002F>\n* X\u002FTwitter Username Integration (via parameter)\u003C\u002Fp>\n\u003Ch4>PRO Features\u003C\u002Fh4>\n\u003Cp>Upgrade to \u003Ca href=\"https:\u002F\u002Fwww.wpzoom.com\u002Fplugins\u002Fsocial-share\u002F\" rel=\"nofollow ugc\">Social Icons Widget PRO\u003C\u002Fa> to unlock powerful features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Floating Buttons\u003C\u002Fstrong> – Display social sharing icons as a fixed floating bar on the side of your website (NEW!)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Share Analytics Dashboard\u003C\u002Fstrong> – Track how visitors share your content with detailed analytics\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Like Button\u003C\u002Fstrong> – Add a like button to let visitors engage with your posts\u003C\u002Fli>\n\u003Cli>\u003Cstrong>AI Share Buttons\u003C\u002Fstrong> – Share to ChatGPT, Claude, and Perplexity AI platforms\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Share Counts\u003C\u002Fstrong> – Display total and individual share counts on buttons\u003C\u002Fli>\n\u003Cli>\u003Cstrong>External Share Counts\u003C\u002Fstrong> – Fetch real share counts from Facebook, Pinterest via SharedCount API\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom SVG Icon Uploads\u003C\u002Fstrong> – Upload your own custom SVG icons\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Nav Menu Integration\u003C\u002Fstrong> – Add social icons directly to WordPress navigation menus\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard Widget\u003C\u002Fstrong> – Quick stats overview right on your WordPress dashboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Priority Support\u003C\u002Fstrong> – Get help faster with priority email support\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwww.wpzoom.com\u002Fplugins\u002Fsocial-share\u002F\" rel=\"nofollow ugc\">Learn more about PRO \u003Cspan aria-hidden=\"true\" class=\"wp-exclude-emoji\">→\u003C\u002Fspan>\u003C\u002Fa>\u003C\u002Fp>\n\u003Cp>\u003Cstrong>General Features:\u003C\u002Fstrong>\u003Cbr \u002F>\n* 100+ Sites\u002FSocial Networks Supported\u003Cbr \u002F>\n* FontAwesome Integration\u003Cbr \u002F>\n* Academicons Integration: 38 Academia Icons for Academics\u003Cbr \u002F>\n* Supports Email Addresses (mailto:email@example.com)\u003Cbr \u002F>\n* Supports Telephone Numbers (tel:12345)\u003Cbr \u002F>\n* Supports Viber (viber:\u002F\u002Fadd?number=123456)\u003Cbr \u002F>\n* Supports WhatsApp (https:\u002F\u002Fapi.whatsapp.com\u002Fsend?phone=15551234567)\u003C\u002Fp>\n\u003Ch4>Icons\u003C\u002Fh4>\n\u003Cp>Twitter, X, Facebook, Instagram, Pinterest, Snapchat, Threads, Yelp, LinkedIn, Bloglovin’, Lookbook, Feedly, Periscope, SoundCloud, Spotify, Last.fm, YouTube, Vimeo, Flickr, 500px, Tumblr, Blogger, Reddit, Dribbble, Envato, Behance, DeviantArt, GitHub, RSS, Disqus, Stackoverflow, Komoot, Tiktok, Mailchimp, Podcasts, Telegram, TripAdvisor, AirBnb, Baidu, ebay, Medium, Periscope, Snapchat, Bandcamp, Eyem, Viber, Quora, Etsy, Meetup, Linode, IMDB, Overwatch, Strava, Tidal, Deezer, Unsplash, Codered, Udemy, CrunchBase, Angie’s List, App Store, Nextdoor, WhatsApp, ResearchGate, Slack, Songkick, ReverbNation, Bluesky\u003C\u002Fp>\n\u003Ch4>Credits\u003C\u002Fh4>\n\u003Cp>Some Social Icons are provided by the Socicon icon font.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fjpswalsh.github.io\u002Facademicons\u002F\" rel=\"nofollow ugc\">Academicons\u003C\u002Fa> are provided by James Walsh.\u003C\u002Fp>\n\u003Ch4>GDPR COMPLIANCE\u003C\u002Fh4>\n\u003Cp>Social Icons & Sharing Buttons does not collect any information from your visitors, therefore it’s \u003Cstrong>100% GDPR compliant\u003C\u002Fstrong>.\u003C\u002Fp>\n\u003Ch4>Get Involved\u003C\u002Fh4>\n\u003Cp>Looking to contribute code to this plugin? Go ahead and \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fwpzoom\u002Fsocial-icons-widget\u002F\" rel=\"nofollow ugc\">fork the repository over at GitHub\u003C\u002Fa>.\u003C\u002Fp>\n","Social media icons plugin for WordPress - Add 400+ social icons and share buttons. Gutenberg block, widget & Elementor support. GDPR compliant.",100000,3783432,98,143,"2026-04-11T14:55:00.000Z","6.5","7.4",[78,20,79,80,21],"share-buttons","social-media-icons","social-media-widget","https:\u002F\u002Fwww.wpzoom.com\u002Fplugins\u002Fsocial-share\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsocial-icons-widget-by-wpzoom.4.5.10.zip",96,"2026-03-12 20:38:20",{"slug":86,"name":87,"version":88,"author":89,"author_profile":90,"description":91,"short_description":92,"active_installs":93,"downloaded":94,"rating":95,"num_ratings":96,"last_updated":97,"tested_up_to":98,"requires_at_least":99,"requires_php":100,"tags":101,"homepage":105,"download_link":106,"security_score":107,"vuln_count":25,"unpatched_count":11,"last_vuln_date":108,"fetched_at":27},"crafty-social-buttons","Crafty Social Buttons","1.5.8","Sarah","https:\u002F\u002Fprofiles.wordpress.org\u002Fshen045\u002F","\u003Cp>This plugin adds a set of social buttons to your website, and includes craft-related social sites like Ravelry, Etsy, Craftsy and Pinterest as well as other major social networks, including WhatsApp.  Support for sharing to WhatsApp is also provided on mobile devices.   You can choose from nine different button styles to match your theme.  You can have the share buttons automatically added to the top or bottom of each post, and can position the link buttons using either a widget, a shortcode or a template action hook.\u003C\u002Fp>\n\u003Cp>You can use the share button and link button functions either separately, or together:\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Share Button mode\u003C\u002Fstrong> allows you to put a set of buttons at the top or bottom of each post.  Each button will share that post with that particular service.  I.e., clicking the facebook icon will open a window for the user to share your post on their Facebook page.  Not all services support sharing, for instance, you can’t share via Etsy or Craftsy.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Link Button mode\u003C\u002Fstrong> lets you configure the buttons to link directly you your profiles on the social networks.  I.e. clicking the facebook icon will take the user to your facebook page, clicking the Etsy icon will take them to your Etsy shop.   These are designed to be included in either your header, sidebars or footer, as they are not specific to a post.  These can be easily included by adding the Social Link Button widget to the area where you want the buttons to appear.\u003C\u002Fp>\n\u003Cp>Supported social services include:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Craftinoo (link only)\u003C\u002Fli>\n\u003Cli>Craftsy (link only)\u003C\u002Fli>\n\u003Cli>Dawanda (link only)\u003C\u002Fli>\n\u003Cli>Digg\u003C\u002Fli>\n\u003Cli>Ebay (link only)\u003C\u002Fli>\n\u003Cli>Email (share only)\u003C\u002Fli>\n\u003Cli>Etsy (link only)\u003C\u002Fli>\n\u003Cli>Facebook\u003C\u002Fli>\n\u003Cli>Flickr (link only)\u003C\u002Fli>\n\u003Cli>Google+\u003C\u002Fli>\n\u003Cli>Instagram (link only)\u003C\u002Fli>\n\u003Cli>LinkedIn\u003C\u002Fli>\n\u003Cli>Pinterest\u003C\u002Fli>\n\u003Cli>Ravelry\u003C\u002Fli>\n\u003Cli>Reddit\u003C\u002Fli>\n\u003Cli>Specific Feeds (link only)\u003C\u002Fli>\n\u003Cli>Stumble Upon\u003C\u002Fli>\n\u003Cli>Tumblr\u003C\u002Fli>\n\u003Cli>Twitter\u003C\u002Fli>\n\u003Cli>Vimeo\u003C\u002Fli>\n\u003Cli>VK\u003C\u002Fli>\n\u003Cli>YouTube\u003C\u002Fli>\n\u003Cli>WhatApp (share only, only on mobile)\u003C\u002Fli>\n\u003Cli>Xing\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>You can also choose exactly which services you want separately for each mode, so you can can have \u003Cem>Share Buttons\u003C\u002Fem> for Ravelry, Pinterest, Facebook, Twitter and Email, but have \u003Cem>Link Buttons\u003C\u002Fem> for Google+, Craftsy, Pinterest and your Etsy shop.\u003C\u002Fp>\n\u003Cp>For more information, see the plugin website at http:\u002F\u002Fsarahhenderson.github.io\u002FCrafty-Social-Buttons\u002F\u003C\u002Fp>\n\u003Ch3>Future Editions\u003C\u002Fh3>\n\u003Cp>These are the things currently in the pipeline:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Adding the ability to share\u002Flink to Flipboard, Goodreads and 500px\u003C\u002Fli>\n\u003Cli>Additional options for layout and style of the buttons\u003C\u002Fli>\n\u003Cli>Shortcode options for more manual control of the buttons\u003C\u002Fli>\n\u003Cli>(Anything else?  You tell me!)\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds social sharing and link buttons, including Ravelry, Etsy, Craftsy and Pinterest.",1000,115025,94,40,"2017-11-28T17:21:00.000Z","4.7.33","3.5","",[102,103,104,20,21],"sharing","social","social-buttons","http:\u002F\u002Fgithub.com\u002Fsarahhenderson\u002Fcrafty-social-buttons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcrafty-social-buttons.zip",85,"2017-05-12 00:00:00",{"slug":110,"name":111,"version":112,"author":113,"author_profile":114,"description":115,"short_description":116,"active_installs":93,"downloaded":117,"rating":118,"num_ratings":119,"last_updated":120,"tested_up_to":16,"requires_at_least":121,"requires_php":16,"tags":122,"homepage":126,"download_link":127,"security_score":128,"vuln_count":11,"unpatched_count":11,"last_vuln_date":35,"fetched_at":27},"share-social-media","Social Icons Sticky","1.7.6","ScriptsTown","https:\u002F\u002Fprofiles.wordpress.org\u002Fscriptstown\u002F","\u003Cp>\u003Cstrong>Social Icons Sticky\u003C\u002Fstrong> plugin adds social media sharing icons to your WordPress website. The plugin adds social share icons to posts or pages of your WordPress site and allows visitors to share the content of a post or page on various social media sites. It automatically picks the featured image, post title, and meta description of the page for sharing it depending on the social media platform.\u003C\u002Fp>\n\u003Cp>You can choose which social icons to enable for the sticky or content area. It supports multiple icon placement positions. It includes quick options to place social icons before and after the page\u002Fpost content. Also, you can place sticky icons on the right or left side of your WordPress site.\u003C\u002Fp>\n\u003Cp>Social sharing icons are a crucial aspect of WordPress website design, \u003Cstrong>SEO\u003C\u002Fstrong>, and functionality. Having social sharing icons allows users to easily share content from your website on their own social media profiles. The content can also include links back to your WordPress site. This can result in increased website traffic, interaction, and, ultimately, brand awareness.\u003C\u002Fp>\n\u003Cp>Furthermore, including social sharing icons on your website can help to improve your search engine optimization, visibility, and reach of your website, as well as your online presence and reputation.\u003C\u002Fp>\n\u003Ch3>Social Icons Sticky Features\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Ca href=\"https:\u002F\u002Fscriptstown.com\u002Fwordpress-plugins\u002Fshare-social-media\u002F\" rel=\"nofollow ugc\">Social Icons Sticky Features\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Social Icons\u003C\u002Fstrong> to Page or Post\u003C\u002Fli>\n\u003Cli>Place Icons Before or After Content\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Sticky\u003C\u002Fstrong> Social Share Icons\u003C\u002Fli>\n\u003Cli>Popular Social Media Icons\u003C\u002Fli>\n\u003Cli>Customize \u003Cstrong>Social Sharing\u003C\u002Fstrong> Icons\u003C\u002Fli>\n\u003Cli>Multiple Icons Placements\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Icons Design\u003C\u002Fstrong> Settings\u003C\u002Fli>\n\u003C\u002Ful>\n","Add social sharing icons to a post or page of your WordPress website and allow visitors to share your content on various social media sites.",109205,88,5,"2026-03-08T22:01:00.000Z","5.0",[20,123,124,21,125],"social-media","social-share","sticky-icons","https:\u002F\u002Fscriptstown.com\u002Fwordpress-plugins\u002Fshare-social-media\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fshare-social-media.1.7.6.zip",100,{"slug":130,"name":131,"version":132,"author":133,"author_profile":134,"description":135,"short_description":136,"active_installs":137,"downloaded":138,"rating":11,"num_ratings":11,"last_updated":139,"tested_up_to":140,"requires_at_least":141,"requires_php":142,"tags":143,"homepage":100,"download_link":148,"security_score":128,"vuln_count":11,"unpatched_count":11,"last_vuln_date":35,"fetched_at":27},"conversions-extensions","Conversions Extensions","2.2.4","uniquelylost","https:\u002F\u002Fprofiles.wordpress.org\u002Funiquelylost\u002F","\u003Cp>Adds homepage sections, one click demo imports, social icons, and other features to \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fthemes\u002Fconversions\u002F\" rel=\"ugc\">Conversions theme\u003C\u002Fa> for WordPress.\u003C\u002Fp>\n\u003Cp>You can view the \u003Ca href=\"https:\u002F\u002Fconversionswp.com\u002Fdocs\u002Fdocumentation\u002F\" rel=\"nofollow ugc\">documentation\u003C\u002Fa> here.\u003C\u002Fp>\n\u003Ch4>Extensions List:\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\n\u003Cp>Homepage Sections\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Homepage Sorting\u003C\u002Fli>\n\u003Cli>Clients\u003C\u002Fli>\n\u003Cli>Counter\u003C\u002Fli>\n\u003Cli>Easy Digital Downloads\u003C\u002Fli>\n\u003Cli>FAQ\u003C\u002Fli>\n\u003Cli>Gallery\u003C\u002Fli>\n\u003Cli>Google Map\u003C\u002Fli>\n\u003Cli>Hero\u003C\u002Fli>\n\u003Cli>Icon features\u003C\u002Fli>\n\u003Cli>Image features\u003C\u002Fli>\n\u003Cli>Single feature\u003C\u002Fli>\n\u003Cli>News\u003C\u002Fli>\n\u003Cli>Pricing\u003C\u002Fli>\n\u003Cli>Team\u003C\u002Fli>\n\u003Cli>Testimonials\u003C\u002Fli>\n\u003Cli>Text\u003C\u002Fli>\n\u003Cli>WooCommerce\u003C\u002Fli>\n\u003Cli>HTML or Shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>One Click Demo Imports\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Business demo\u003C\u002Fli>\n\u003Cli>Blog demo\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Navbar Variants\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Menu right\u003C\u002Fli>\n\u003Cli>Menu below\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003Cli>\n\u003Cp>Social Icons\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Navbar\u003C\u002Fli>\n\u003Cli>Footer\u003C\u002Fli>\n\u003Cli>Shortcode\u003C\u002Fli>\n\u003C\u002Ful>\n\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Shortcodes\u003C\u002Fh4>\n\u003Cp>Many of the homepage sections can also be output outside the homepage using shortcodes.\u003C\u002Fp>\n\u003Cp>[conversions_clients]\u003Cbr \u002F>\n[conversions_counter]\u003Cbr \u002F>\n[conversions_faq]\u003Cbr \u002F>\n[conversions_gallery]\u003Cbr \u002F>\n[conversions_google_map]\u003Cbr \u002F>\n[conversions_icon_features]\u003Cbr \u002F>\n[conversions_img_features]\u003Cbr \u002F>\n[conversions_single_feature]\u003Cbr \u002F>\n[conversions_social]\u003Cbr \u002F>\n[conversions_pricing]\u003Cbr \u002F>\n[conversions_team]\u003Cbr \u002F>\n[conversions_testimonials]\u003C\u002Fp>\n\u003Ch4>Examples of sites Conversions Theme is used on\u003C\u002Fh4>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fconversionswp.com\u002F\" rel=\"nofollow ugc\">Conversions Theme\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fserviceninjas.io\u002F\" rel=\"nofollow ugc\">Service Ninjas\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fmycryptocheckout.com\u002F\" rel=\"nofollow ugc\">MyCryptoCheckout\u003C\u002Fa>\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fsafetydig.com\u002F\" rel=\"nofollow ugc\">Safetydig\u003C\u002Fa>\u003C\u002Fp>\n\u003Ch4>Resources\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>Slick v1.8.1 | MIT License\u003C\u002Fli>\n\u003Cli>Counter-Up2 v1.0.4 | MIT License\u003C\u002Fli>\n\u003Cli>lightbox2 v2.11.3 | MIT License\u003C\u002Fli>\n\u003C\u002Ful>\n","Adds homepage sections, one click demo imports, social icons, and other features to Conversions theme for WordPress.",80,9876,"2025-06-13T02:37:00.000Z","6.8.5","4.7","5.6",[144,145,146,20,147],"extensions","homepage","shortcodes","theme-demos","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fconversions-extensions.2.2.4.zip",{"slug":150,"name":151,"version":152,"author":153,"author_profile":154,"description":155,"short_description":156,"active_installs":58,"downloaded":157,"rating":11,"num_ratings":11,"last_updated":158,"tested_up_to":159,"requires_at_least":160,"requires_php":100,"tags":161,"homepage":100,"download_link":165,"security_score":107,"vuln_count":11,"unpatched_count":11,"last_vuln_date":35,"fetched_at":27},"wp-custom-social-sharing","WP Custom Social Sharing","2.1","Wp Tiro","https:\u002F\u002Fprofiles.wordpress.org\u002Fwptiro\u002F","\u003Cp>\u003Cstrong>WP Custom Social Sharing\u003C\u002Fstrong> is a free WordPress plugin that makes any content on you website social-share-friendly by allowing anyone easily share their website content (page, posts, custom post types, media) on some major social medias: Facebook, Twitter, Pinterest, LinkedIn, Blogger, Buffer, Digg, Email, Flipboard, Odnoklassniki, Pocket, Reddit, Skype, Stumbleupon, Telegram, Tumblr, Whats App, and Xing from your website.\u003C\u002Fp>\n\u003Cp>You can either enable\u002Fdisable the social media profiles you want to activate and select the order for each of the icons. There is an option to set the default count of icons to show initially and rest of the icons along with the default count icons into a popup.\u003C\u002Fp>\n\u003Cp>This plugin provides the capability to select the position (above content, after content, floating left and inside image), all at once and 3 different sizes ( small, medium and large ).\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Plugin Features\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Supports social sharing for Facebook, Twitter, Pinterest, LinkedIn, Blogger, Buffer, Digg, Email, Flipboard, Odnoklassniki, Pocket, Reddit, Skype, Stumbleupon, Telegram, Tumblr, Whats App, and Xing.\u003C\u002Fli>\n\u003Cli>Custom selection of Post, Page, Custom Post Types and Media to display the sharing icons.\u003C\u002Fli>\n\u003Cli>Size selection between Small, Medium and Large.\u003C\u002Fli>\n\u003Cli>100% responsive.\u003C\u002Fli>\n\u003Cli>Reorder social icons by drag and drop in the suitable order.\u003C\u002Fli>\n\u003Cli>Provides multiple location to display icons on the same page such as: above content, below content, float left and over the post-thumbnail.\u003C\u002Fli>\n\u003Cli>Provides Shortcode.\u003C\u002Fli>\n\u003Cli>Compatible with any themes.\u003C\u002Fli>\n\u003Cli>Selection of custom colors for all the icons individually.\u003C\u002Fli>\n\u003Cli>Enable\u002FDisable icons individually.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Plugin Shortcodes\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cpre>\u003Ccode>[wcss_shortcode above_content=true] \u002F\u002FAppears above the content\n[wcss_shortcode below_content=true] \u002F\u002FAppears below the content\n[wcss_shortcode float_left=true] \u002F\u002FAppears on the left side of the page\n\u003C\u002Fcode>\u003C\u002Fpre>\n\u003Ch3>Support\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>Feel free to leave comments,ask question,suggest new feature or directly mail at admin@wptechgiants.com\u003C\u002Fli>\n\u003C\u002Ful>\n","WP Custom Social Sharing is a free WordPress plugin that makes any content on you website social-share-friendly by allowing anyone easily share their  &hellip;",2584,"2022-05-31T01:45:00.000Z","6.0.11","3.6",[162,163,164,20,21],"responsive-icon","responsive-social-icons","responsive-social-sharing-icons","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-custom-social-sharing.zip",{"attackSurface":167,"codeSignals":206,"taintFlows":233,"riskAssessment":234,"analyzedAt":240},{"hooks":168,"ajaxHandlers":198,"restRoutes":199,"shortcodes":200,"cronEvents":205,"entryPointCount":25,"unprotectedCount":11},[169,175,179,183,187,191,194],{"type":170,"name":171,"callback":172,"file":173,"line":174},"action","init","ess_register_shortcuts","eds_social_share.php",22,{"type":170,"name":176,"callback":177,"file":173,"line":178},"admin_menu","ess_admin_menus",23,{"type":170,"name":180,"callback":181,"file":173,"line":182},"admin_init","social_share_settings",24,{"type":170,"name":184,"callback":185,"priority":25,"file":173,"line":186},"wp_head","ess_open_graph_tags",25,{"type":170,"name":188,"callback":189,"file":173,"line":190},"add_meta_boxes","ess_add_og_meta_box",99,{"type":170,"name":192,"callback":193,"file":173,"line":128},"save_post","ess_save_og_meta_box",{"type":170,"name":195,"callback":196,"file":173,"line":197},"wp_enqueue_scripts","ess_register_styles",132,[],[],[201],{"tag":202,"callback":203,"file":173,"line":204},"social_share","eds_social_share",146,[],{"dangerousFunctions":207,"sqlUsage":208,"outputEscaping":210,"fileOperations":11,"externalRequests":11,"nonceChecks":25,"capabilityChecks":25,"bundledLibraries":232},[],{"prepared":11,"raw":11,"locations":209},[],{"escaped":211,"rawEcho":212,"locations":213},57,10,[214,217,219,220,222,224,226,227,229,231],{"file":173,"line":215,"context":216},55,"raw output",{"file":173,"line":218,"context":216},56,{"file":173,"line":211,"context":216},{"file":173,"line":221,"context":216},58,{"file":173,"line":223,"context":216},66,{"file":173,"line":225,"context":216},67,{"file":173,"line":107,"context":216},{"file":173,"line":228,"context":216},86,{"file":173,"line":230,"context":216},87,{"file":173,"line":118,"context":216},[],[],{"summary":235,"deductions":236},"The 'eds-social-share' v3.0 plugin exhibits a generally good security posture based on the static analysis, with no critical or high-severity code signals like dangerous functions or unsanitized taint flows. The plugin demonstrates strong adherence to secure coding practices by utilizing prepared statements for all SQL queries, a high percentage of properly escaped output, and implementing both nonce and capability checks. The attack surface is minimal and appears to be protected.\n\nHowever, a significant concern arises from the plugin's vulnerability history. The presence of one known, currently unpatched medium-severity CVE, specifically related to Cross-Site Scripting (XSS), is a critical indicator of risk. While the current version's static analysis doesn't reveal this specific vulnerability, its historical occurrence suggests a potential for such issues to reappear or be present in subtle forms. The fact that a vulnerability of this type was patched relatively recently (though the provided date is in the future, assuming it represents a past event for analysis) and is still unpatched in the current analysis is a major red flag.\n\nIn conclusion, while the code itself appears well-written with many security best practices implemented, the unpatched historical CVE significantly elevates the risk profile. Users should be aware that despite the positive static analysis, a known XSS vulnerability remains unaddressed, making the plugin a potential target for attackers.",[237],{"reason":238,"points":239},"Unpatched CVE exists",18,"2026-04-16T14:32:36.928Z",{"wat":242,"direct":251},{"assetPaths":243,"generatorPatterns":246,"scriptPaths":247,"versionParams":248},[244,245],"\u002Fwp-content\u002Fplugins\u002Feds-social-share\u002Fcss\u002Fstyles.css","\u002Fwp-content\u002Fplugins\u002Feds-social-share\u002Fcss\u002Fall.min.css",[],[],[249,250],"eds-social-share\u002Fcss\u002Fstyles.css?ver=","eds-social-share\u002Fcss\u002Fall.min.css?ver=",{"cssClasses":252,"htmlComments":256,"htmlAttributes":262,"restEndpoints":269,"jsGlobals":270,"shortcodeOutput":272},[253,254,255],"ess-small","ess-medium","ess-large",[257,258,259,258,260,261],"\u003C!-- Ed's Social Share - Open Graph Tags -->","\u003C!-- \u002F Ed's Social Share -->","\u003C!-- Ed's Social Share -->","\u003C!-- Select Share Image -->","\u003C!-- \u002F Select Share Image -->",[263,264,265,266,267,268],"ess_og_image","ess_og_nonce","ess_og_nonce_field","name=\"ess_og_image\"","value=\"","onclick=\"var frame=wp.media({title:'Select Share Image',multiple:false});frame.on('select',function(){var url=frame.state().get('selection').first().toJSON().url;document.querySelector('input[name=ess_og_image]').value=url;});frame.open();\"",[],[271],"wp.media",[273,274,275],"\u003Cdiv style=\"text-align:center\" class=\"wrapper ","\u003Ch2 style=\"text-align:center; color:","Share Us",{"error":277,"url":278,"statusCode":279,"statusMessage":280,"message":280},true,"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Feds-social-share\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":119,"versions":282},[283,289,296,304,312],{"version":6,"download_url":23,"svn_tag_url":284,"released_at":35,"has_diff":46,"diff_files_changed":285,"diff_lines":35,"trac_diff_url":286,"vulnerabilities":287,"is_current":277},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Feds-social-share\u002Ftags\u002F3.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Feds-social-share%2Ftags%2F2.1&new_path=%2Feds-social-share%2Ftags%2F3.0",[288],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":152,"download_url":290,"svn_tag_url":291,"released_at":35,"has_diff":46,"diff_files_changed":292,"diff_lines":35,"trac_diff_url":293,"vulnerabilities":294,"is_current":46},"https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feds-social-share.2.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Feds-social-share\u002Ftags\u002F2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Feds-social-share%2Ftags%2F2.0&new_path=%2Feds-social-share%2Ftags%2F2.1",[295],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":297,"download_url":298,"svn_tag_url":299,"released_at":35,"has_diff":46,"diff_files_changed":300,"diff_lines":35,"trac_diff_url":301,"vulnerabilities":302,"is_current":46},"2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feds-social-share.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Feds-social-share\u002Ftags\u002F2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Feds-social-share%2Ftags%2F1.0&new_path=%2Feds-social-share%2Ftags%2F2.0",[303],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":305,"download_url":306,"svn_tag_url":307,"released_at":35,"has_diff":46,"diff_files_changed":308,"diff_lines":35,"trac_diff_url":309,"vulnerabilities":310,"is_current":46},"1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feds-social-share.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Feds-social-share\u002Ftags\u002F1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Feds-social-share%2Ftags%2Fv1&new_path=%2Feds-social-share%2Ftags%2F1.0",[311],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35},{"version":313,"download_url":314,"svn_tag_url":315,"released_at":35,"has_diff":46,"diff_files_changed":316,"diff_lines":35,"trac_diff_url":35,"vulnerabilities":317,"is_current":46},"v1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Feds-social-share.v1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Feds-social-share\u002Ftags\u002Fv1\u002F",[],[318],{"id":31,"url_slug":32,"title":33,"severity":37,"cvss_score":38,"vuln_type":40,"patched_in_version":35}]